Profiles search

Wale Abimbola

Governance, Risk and Compliance Manager
Edmonton, Alberta, Canada
View resume Unlock resume

Skills

CORE COMPETENCIES
 Program Management: Cross-Functional Leadership, Strategic Roadmap Development, Risk Mitigation
 Security Frameworks: ISO 27001, SOC 2, NIST, PCI-DSS, SWIFT CSCF
 Cloud Infrastructure: AWS, Azure, SaaS, Cloud Security, Compliance
 Tools: Jira, Atlassian, SharePoint, ServiceNow, GRC Platforms (OneTrust, RSA Archer)
 Communication & Collaboration: Stakeholder Engagement, Status Reporting, Executive Presentations
 Audit & Compliance: SOC 2, ISO 27001, PCI-DSS, Privacy, Regulatory Requirements
 Certifications: CISM, CRISC, ISO 27001 Lead Auditor, CompTIA Security+

About

I am a dynamic Information Security Manager with over 10 years of experience in information security, risk management, and governance. I excel at establishing industry-leading Governance, Risk & Compliance (GRC) practices, developing comprehensive policies and standards, and leading high-performing teams. My focus is on building resilience in people, systems, and data to achieve strategic goals amidst evolving cyber threats. I collaborate effectively with all organizational levels to address challenges and ensure secure, compliant solutions, driving continuous improvement and maintaining a proactive security posture.

As the GRC Manager, I lead the strategic Information Security roadmap, safeguard technology and information assets, and manage a skilled team of information security professionals. I ensure adherence to regulatory requirements, internal policies, and industry best practices, working closely with cross-functional teams to maintain compliance and uphold best practices.

In my role within a payment-clearing organization, I developed, implemented, and validated information security controls and policies using frameworks such as NIST, ISO 27001, CIS, PCI-DSS, and GDPR. I communicated findings to stakeholders, coordinated audits, presented risk metrics to executives, and oversaw assessments of security requirements in statements of work and master service agreements. I managed internal and third-party risk assessments to align with organizational goals and regulatory standards.

I assessed the effectiveness of third-party controls, planned and executed security risk assessments, and reviewed SOC 2 and Pen Test reports. I prepared comprehensive assessment reports with identified issues, risk levels, recommendations, and target completion dates. I Collaborated with business owners and vendor managers; I ensure corrective actions are implemented.

Additionally, I addressed cybersecurity risks by providing executives with incident reports, conducting intrusion analysis with tools like SIEM and EDR, managing data backups and disaster recovery, configuring hardware, managing user accounts, providing user training, and resolving hardware, software, and connectivity issues.

Wale Abimbola
639-999-1424